Asp.Net Core 企業微信靜默授權
阿新 • • 發佈:2020-10-05
> 企業微信介面文件
>> 1.[構造授權網頁連結](https://work.weixin.qq.com/api/doc/90000/90135/91022)
>> ![](https://img2020.cnblogs.com/blog/1665797/202010/1665797-20201005150839684-982260914.png)
>> 2.回撥獲取到 Code 通過code+access_token去[請求使用者資訊](https://work.weixin.qq.com/api/doc/90000/90135/91023)
>> ![](https://img2020.cnblogs.com/blog/1665797/202010/1665797-20201005151033969-1028558806.png)
>> 3.[獲取access_token](https://work.weixin.qq.com/api/doc/90000/90135/91039)
>> ![](https://img2020.cnblogs.com/blog/1665797/202010/1665797-20201005151255624-235117513.png)
> 除錯準備工作 -->內網穿透+域名 推薦向日葵有免費的,免費的開發測試夠用了
> 域名的配置成可信用
> ![](https://img2020.cnblogs.com/blog/1665797/202010/1665797-20201005150604407-1472753901.png)
> 上程式碼 [Demo下載](https://codeload.github.com/SuperDust/wxauth2/zip/master)
```
[ApiController]
[Route("api/[controller]")]
public class Auth2Controller : ControllerBase
{
private readonly string _agentId = "1000002";
private readonly string _secret = "Y3f8ESBIBJoC8M_FPHOlpvmghS_Nn2ceFePRVZjw9_E";
private readonly string _corpId = "wwbf72a7a059eac0f8";
///
/// 授權地址
///
private readonly string _auth2url = "https://open.weixin.qq.com/connect/oauth2/authorize";
///
/// 授權回撥地址
///
private readonly string _callbackurl = "http://******.zicp.vip/auth2callback/api/Auth2/Callback";
///
/// 獲取access_token地址
///
private readonly string _gettokenurl = "https://qyapi.weixin.qq.com/cgi-bin/gettoken";
///
/// 獲取訪問使用者身份地址
///
private readonly string _getuserurl = "https://qyapi.weixin.qq.com/cgi-bin/user/getuserinfo";
private readonly ILogger _logger;
private readonly IHttpClientFactory _clientFactory;
private readonly IMemoryCache _memoryCache;
public Auth2Controller(ILogger logger, IHttpClientFactory clientFactory, IMemoryCache memoryCache)
{
_logger = logger;
_clientFactory = clientFactory;
_memoryCache = memoryCache;
}
[HttpGet]
public IActionResult Auth2(string redirecturi)
{
string strurl = $"{_auth2url}?" +
$"&appid={_corpId}" +
$"&redirect_uri={System.Web.HttpUtility.UrlEncode(_callbackurl)}" +
$"&response_type=code" +
$"&scope={_secret}" +
$"&agentid={_agentId}" +
$"&state={System.Web.HttpUtility.UrlEncode(redirecturi)}#wechat_redirect";
return Redirect(strurl);
}
[HttpGet("Callback")]
public async Task Callback(string code, string state)
{
/**
1)code只能消費一次,不能重複消費。比如說,是否存在多個伺服器同時消費同一code情況。
2)code需要在有效期間消費(5分鐘),過期會自動失效。
*/
string access_token = await GetAccessToken();
string url = $"{_getuserurl}?access_token={access_token}&code={code}";
HttpResponseMessage response = await _clientFactory.CreateClient().GetAsync(url);
if (response.StatusCode == System.Net.HttpStatusCode.OK)
{
using (var responseStream = await response.Content.ReadAsStreamAsync())
{
var userinfo = JsonConvert.DeserializeObject(new StreamReader(responseStream).ReadToEnd());
int errcode = userinfo.errcode;
if (errcode == 0)
{
//企業成員
string UserId = userinfo.UserId;
//外部成員
string OpenId = userinfo.OpenId;
/**
userid是系統生成的可以修改一次;
所以後面的業務邏輯如果遇到錯誤就要重新授權一下;
*/
if (UserId==null)
{
_memoryCache.Set("UserId", OpenId);
}
else
{
_memoryCache.Set("UserId", UserId);
}
}
else
{
_logger.LogError($"getuserinfo請求錯誤:{userinfo.errmsg}");
return Ok();
}
}
}
return Redirect($"{System.Web.HttpUtility.UrlDecode(state)}?UserId={_memoryCache.Get("UserId")}");
}
public async Task GetAccessToken()
{
if (_memoryCache.Get("AccessToken") == null)
{
string url = $"{_gettokenurl}?corpid={_corpId}&corpsecret={_secret}";
HttpResponseMessage response = await _clientFactory.CreateClient().GetAsync(url);
if (response.StatusCode == System.Net.HttpStatusCode.OK)
{
using (var responseStream = await response.Content.ReadAsStreamAsync())
{
var access_token_result = JsonConvert.DeserializeObject(new StreamReader(responseStream).ReadToEnd());
int errcode = access_token_result.errcode;
if (errcode == 0)
{
string access_token = access_token_result.access_token;
int expires_in = access_token_result.expires_in;
_memoryCache.Set("AccessToken", access_token, DateTimeOffset.Now.AddSeconds(expires_in - 10));
}
else
{
_logger.LogError($"access_token請求錯誤:{access_token_result.errmsg }");
}
}
}
}
return _memoryCache.Get("AccessToken");
}